similar to: Importing Accounts from Windows?

How does one go about adding a machine account, or even a normal samba account, on a Samba PDC with LDAP back end? I wanted to avoid using something like smbldap-useradd, because I want to actually understand what's going on. I'm assuming it's just some sort of small ldif to add, like I would for adding user, am I wrong? Thanks, Kyle

I tried setting up a samba/ldap domain using the ldapsam:editposix feature, using the brief instructions at http://wiki.samba.org/index.php/Ldapsam_Editposix. Everything goes rather smoothly, and I can add XP machines and log into them as the Administrative user. I added a user to the server, then to samba/ldap using smbpasswd -a newuser ldapsearch -x shows the user & encrypted password, so

On Wed, Feb 4, 2015 at 4:55 PM, Warren Young <wyml at etr-usa.com> wrote: >>> >> There have been remotely exploitable vulnerabilities where an arbitrary file could be read > > CVEs, please? > > I?m aware of vulnerabilities that allow a remote read of arbitrary files that are readable by the exploited process?s user, but for such an exploit to work on /etc/shadow,

I recently migrated from Windows NT 4.0 to Samba with a LDAP backend and haven't found a good tool have managing logon scripts for user groups and individual users. What tools are available for managing this? Currently each user is assigned their own script which makes changes painful. Mit freundlichen Gr??en / With kind regards Hans-Wilhelm Heisinger

Greetings all, I'm trying to create a CentOS 4.4 kickstart CD (not a network install), duplicating what I've done for Fedora Core 3. I am having a cirular dependency for initscripts, which causes initscripts not to be installed (no /etc/inittab when the boot gets to INIT) The cascade is: initscripts-7.39.25.EL-1.centos4 requires /sbin/nash /sbin/nash is in mkinitrd-4.2.1.8-1

The trojaned ssh client is nothing new to the hacker community, and the statement in the previous thread claiming "This type of man-in-the-middle attack (trojaned ssh) is not theoretical anymore, and password authentication is broken." is an example of how many poeple still think "hacking" is something very difficult and nothing short of a genius is required to make the

Our dovecot process died out of no where today, with no sign of reasons why. I'm running a beta from a few weeks ago of 1.0 ... are there any security vulns I should know about that might have caused this crash (someone trying something?) Thanks, Regards, Matt

There is a recent article in the German magazine C''t that may be of interest to those on this list. It describes a cracker program, Juggernaut, which can hijack telnet sessions. The program is written specifically to run under Linux. An english translation of the article is available at: http://www.ix.de/ct/english/9710142/ It also mentions that they are working on a version of the

I''d like to hear some suggestions about securely administering a system remotely. Here''s the application: a project is going to scatter some server machines around the US. The server machines will be running Linux, with the only network servers being a custom application. Ignoring the separate question of physical security, how can I remotely check the system''s

>From http://www.apache.org/info/20010519-hack.html: "The ssh client at SourceForge had been compromised to log outgoing names and passwords, so the cracker was thus able get a shell on apache.org." user's ssh --> SF's ssh --> apache.org's sshd So basically the user's password was entered in the clear to an untrusted program (SF's ssh). Never mind that

I have a Samba 3.0.24-7 on Fedora 6 as a member of an Windows NT 4.0 domain, with a simple share setup with ACLs. The permissions on the share from Windows XP Pro Security tab shows Everyone, and root (Unix Group\root) without any Permissions. When trying to add permissions from XP while logged on as CPDOM+admin the error is display "Unable to save permission changes on "share

Hello- I had to reinstall my system completely, due to a cracker (a script kiddie). I've added the CRAN recommended lines to my sources.list. I removed my old R package (0.92, I believe) and intalled a new one, but it's the 1.3.1 If I remember correctly, this is not the __latest__ version is it? What's happening than, since my /etc/apt/sources.list is correct? TIA Regards

Hi. I'm trying to get plugger to work with ogg123 and it does - sort of. No matter what the song is, it plays 24 seconds of the song and then dies. Same spot every time - I've tried with a short song (Janis Joplin Mercedes Benz) and a long song (Cracker Eurotrash Girl). I have this as the mime identification in the plugger rc file: audio/ogg: ogg: Vorbis Ogg audio application/x-ogg: ogg:

Hi, everyone: My system was compromised a few days ago. The cracker attacked the system through openssh 2.9p2 release 8.7. I attached part of the log file. Thanks. Pin Lu (pin at stredo.com) Nov 25 11:33:05 ns sshd[10627]: Disconnecting: Corrupted check bytes on input. Nov 25 11:33:36 ns named[10478]: Lame server on '55.254.58.211.in-addr.arpa' (in

I was looking at my maillog and it looks like someone is trying to get into my pop3 server. Dec 9 15:28:54 mailserver dovecot: pop3-login: Aborted login: user=<alexis>, method=PLAIN, rip=::ffff:66.167.184.203, lip=::ffff:192.168.1.2 Dec 9 15:29:08 mailserver dovecot: pop3-login: Aborted login: user=<alfonso>, method=PLAIN, rip=::ffff:66.167.184.203, lip=::ffff:192.168.1.2 Dec 9

Hi all developers. I cannot consider myself to be a software developer ( only have a fair exposure to some C++, but mostly Perl nad alot of PHP), so forgive my ignorance. I recently had an idea about improving security of a system to make it impossible for another party to hack a system via a login procedure. Now I'm not sure how current authentication systems work, but I think that if

Hi, I have a 4.9-STABLE FreeBSD box apparently hacked! Yesterday I ran chkrootkit-0.41 and I don't like some of the outputs. Those are: chfn ... INFECTED chsh ... INFECTED date ... INFECTED ls ... INFECTED ps ... INFECTED But all the rest is NOT PROMISC, NOT INFECTED, NOTHING FOUND, NOTHING DELETED, or NOTHING DETECTED. I know by the FreeBSD-Security archives that

On Nov 25, 2014, at 8:27 AM, Declan Kelly <flac-dev at groov.ie> wrote: > > On Tue, Nov 25, 2014 at 12:29:33AM -0800, mle+la at mega-nerd.com wrote: >> >> CVE-2014-9028 : Heap buffer write overflow >> CVE-2014-8962 : Heap buffer read overflow > > Is it known what other FLAC decoding software or firmware is vulnerable > to these overflows? > >

Means "acclaim" in both Norwegian languages (there are new official rules out today for writing both of the 2 Indo-European Norwegian languages). What made me write this acclaim is the number of postings I've seen about Samba's instability - i.e. run-away processes, profiles going wrong, ACL problems and more. My (high school) site with around 80 w2k workstations, of which

-----BEGIN PGP SIGNED MESSAGE----- Friday, April 11, 1997 The Litterbox Sean B. Hamor <hamors@litterbox.org> LINUX IP MASQUERADE Synopsis: A problem exists in IP